Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1b525202-f539-403f-a71f-f0c4f0c705d0/e3b0c272590bb411f575f1bee8da7bf6c2e2b514.roa
File:                     e3b0c272590bb411f575f1bee8da7bf6c2e2b514.roa (raw, json)
Hash identifier:          NGB09ebEsqEwBg70U/YjEwkUKVEUddSk++mtpIUV+v0=
Subject key identifier:   94:0E:B3:7D:C1:55:4E:CC:04:4E:BE:A6:05:19:B5:E0:07:7B:9A:59
Certificate issuer:       /CN=cbf5b73a30367a9832e6ddcde4f3c6d8196f3ea2
Certificate serial:       132464
Authority key identifier: 03:E0:4B:3C:C9:6F:9F:70:7C:B5:4B:05:0B:CB:A4:19:5D:DD:BE:56
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/cbf5b73a30367a9832e6ddcde4f3c6d8196f3ea2.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/1b525202-f539-403f-a71f-f0c4f0c705d0/e3b0c272590bb411f575f1bee8da7bf6c2e2b514.roa
Signing time:             Tue 04 Apr 2023 08:30:01 +0000
ROA not before:           Mon 03 Apr 2023 08:30:01 +0000
ROA not after:            Wed 02 Apr 2025 08:30:01 +0000
asID:                     16509
IP address blocks:        179.0.17.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/1b525202-f539-403f-a71f-f0c4f0c705d0/cbf5b73a30367a9832e6ddcde4f3c6d8196f3ea2.crl
                          rsync://repository.lacnic.net/rpki/lacnic/1b525202-f539-403f-a71f-f0c4f0c705d0/cbf5b73a30367a9832e6ddcde4f3c6d8196f3ea2.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/cbf5b73a30367a9832e6ddcde4f3c6d8196f3ea2.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sat 22 Jul 2023 20:58:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1254500 (0x132464)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cbf5b73a30367a9832e6ddcde4f3c6d8196f3ea2
        Validity
            Not Before: Apr  3 08:30:01 2023 GMT
            Not After : Apr  2 08:30:01 2025 GMT
        Subject: CN=e3b0c272590bb411f575f1bee8da7bf6c2e2b514
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8f:ea:fc:de:15:bb:87:1d:69:21:67:51:e3:ba:
                    f5:28:3e:93:69:a6:c8:3d:e6:83:8c:ad:ff:11:bc:
                    b8:e6:3f:dc:fd:26:ba:20:77:b6:22:fb:87:79:e8:
                    09:f9:c8:81:3e:18:1b:86:87:7b:12:95:29:ea:e8:
                    99:b1:c5:04:a9:b2:8c:68:78:b4:b9:43:a2:93:47:
                    bb:e0:78:8a:22:52:f6:5e:e3:56:e4:01:33:4e:ad:
                    7c:97:0a:57:98:0a:1a:b5:31:f4:db:4c:64:e0:46:
                    d1:a2:40:d1:24:3a:3d:4f:d9:77:de:28:9e:e0:7f:
                    68:4c:86:fc:51:42:7b:0d:ff:45:be:1f:02:f2:ef:
                    44:8c:79:35:5c:b3:fa:05:0d:cc:d5:21:ac:d0:b7:
                    ed:77:74:11:eb:59:c5:ba:c4:fe:a7:fc:ed:d6:54:
                    d6:be:ec:3e:06:09:ed:14:3b:0e:40:0a:29:6c:d0:
                    af:8f:fc:2a:18:71:7e:04:bb:56:4e:ce:a2:a4:bb:
                    40:81:2f:4f:22:16:d9:00:43:03:3a:2c:1f:ec:c4:
                    23:c3:c6:e8:c4:66:41:eb:75:db:fc:db:67:18:8a:
                    8c:74:c7:28:1e:08:69:ea:07:e5:d5:7b:32:0e:50:
                    43:df:0f:84:94:93:1c:92:d6:a9:2e:f4:90:26:41:
                    38:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                94:0E:B3:7D:C1:55:4E:CC:04:4E:BE:A6:05:19:B5:E0:07:7B:9A:59
            X509v3 Authority Key Identifier:
                keyid:03:E0:4B:3C:C9:6F:9F:70:7C:B5:4B:05:0B:CB:A4:19:5D:DD:BE:56

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/cbf5b73a30367a9832e6ddcde4f3c6d8196f3ea2.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1b525202-f539-403f-a71f-f0c4f0c705d0/e3b0c272590bb411f575f1bee8da7bf6c2e2b514.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/1b525202-f539-403f-a71f-f0c4f0c705d0/cbf5b73a30367a9832e6ddcde4f3c6d8196f3ea2.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  179.0.17.0/24

    Signature Algorithm: sha256WithRSAEncryption
         17:45:01:88:d7:f3:f6:9b:55:b9:7e:b6:bf:0d:19:d5:15:0b:
         61:f2:78:57:e2:65:22:a6:db:ce:9f:89:94:fe:1c:6c:b2:5c:
         32:eb:ed:2e:f7:08:fa:48:8b:91:5a:84:4e:9b:1c:34:81:ae:
         e4:98:75:e9:20:c8:ed:b3:da:d3:fa:b7:2c:13:19:0d:0a:6c:
         f1:91:7a:31:b9:ab:79:24:85:5b:d8:8c:b9:c5:3c:eb:96:a2:
         c0:9f:31:7a:da:d4:c3:96:1a:f2:9c:10:3e:b5:86:dc:bf:b3:
         77:af:ab:66:8c:cf:c5:db:d5:3f:bc:73:6d:a2:95:0c:34:2f:
         71:d3:b9:21:7c:17:9c:12:02:51:1a:82:be:e6:1e:50:db:99:
         d7:e2:7f:40:07:60:57:d1:4f:cd:d7:35:17:72:f9:ef:91:1b:
         e2:57:e3:f8:f4:27:2c:06:3e:cc:df:17:c6:40:a0:b1:9e:f1:
         e5:26:3c:90:92:19:db:55:96:6e:7a:6a:d8:69:2d:6a:53:44:
         27:2a:7e:62:14:e5:a5:a9:db:f1:b0:6e:a7:bc:d0:05:08:09:
         14:a1:8e:b0:26:4d:1d:8a:ca:eb:8e:40:79:b6:6b:dd:2b:8c:
         a1:19:35:55:8a:d6:e0:a1:ba:44:7f:06:27:cf:46:21:f6:e4:
         4e:8e:63:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 22:20:51 2023 by rpki-client on console-ams.rpki-client.org